What Pegasus actually does Pegasus is a commercial “mercenary” spyware suite by NSO Group that covertly compromises iOS and Android devices, enabling data theft (messages, photos,...
Broadcom/VMware patches CVE-2025-41236 in ESXi 7.x/8.x, but Shadowserver counts show slow remediation as thousands of internet-reachable hosts remain on vulnerable builds. A critical integer-overflow flaw (CVE-2025-41236)...
Cyber threat actors orchestrated a massive, two-wave brute-force assault on Fortinet SSL VPNs, shifting mid-campaign to FortiManager—raising alarm as such patterns often precede critical CVE disclosures....
From speculative chip flaws to zero-day exploits, Apple rushes to patch a series of high-risk vulnerabilities targeting billions of users worldwide. A Perfect Storm: Apple Grapples...
System and Qualcomm GPU vulnerabilities allowed silent device compromise. Google’s patch blocks zero-day exploits affecting millions of Android users. Mountain View / Global – August 5,...
Unpatched firewalls exposed thousands of networks worldwide. Experts warn of growing risk to small businesses and government agencies from remote code execution flaws. 🌐 July 27,...
CISA and FBI raise red flags about a new ransomware strain crippling essential services while urging critical sectors to adopt robust defense strategies. Washington D.C. |...
CVE-2023-29357 allows attackers to forge tokens and gain administrative control over SharePoint servers, paving the way for full remote code execution in enterprise environments. Critical Microsoft...
Newly discovered CrushFTP flaw enables threat actors to bypass authentication and access sensitive files, prompting urgent calls for immediate patching and global security reviews. Hackers Exploit...